<?php

class UsersController extends AController
{
	/**
	 * @return array action filters
	 */
	public function filters()
	{
		return array(
			'accessControl', // perform access control for CRUD operations
			//'postOnly + delete', // we only allow deletion via POST request
		);
	}

	/**
	 * Specifies the access control rules.
	 * This method is used by the 'accessControl' filter.
	 * @return array access control rules
	 */
	public function accessRules()
	{
		return array(
			array('allow',  // allow all users to perform 'index' and 'view' actions
				'actions'=>array('index','view'),
				'users'=>array('*'),
			),
			array('allow', // allow authenticated user to perform 'create' and 'update' actions
				'actions'=>array('create','update', 'active'),
				'users'=>array('*'),
			),
			array('allow', // allow admin user to perform 'admin' and 'delete' actions
				'actions'=>array('admin','delete','logout'),
				'users'=>array('*'),
			),
			array('deny',  // deny all users
				'users'=>array('*'),
			),
		);
	}

	/**
	 * Displays a particular model.
	 * @param integer $id the ID of the model to be displayed
	 */
	public function actionView($id)
	{
		$this->render('view',array(
			'model'=>$this->loadModel($id),
		));
	}

	/**
	 * Creates a new model.
	 * If creation is successful, the browser will be redirected to the 'view' page.
	 */
    public function actionCreate()
    {
        $model=new Users;
        // Uncomment the following line if AJAX validation is needed
        // $this->performAjaxValidation($model);
        if(isset($_POST['Users']))
        {
            $_POST['Users']['repeat_password'] = $_POST['Users']['password'];
            $model->attributes=$_POST['Users'];
            $model->created_time = date('Y-m-d H:i:s');
            if($model->save()) {
                $this->redirect(array('index'));
            }
        }

        $this->render('create',array(
            'model'=>$model,
        ));
    }

	/**
	 * Updates a particular model.
	 * If update is successful, the browser will be redirected to the 'view' page.
	 * @param integer $id the ID of the model to be updated
	 */
	public function actionUpdate($id)
	{
        $model=$this->loadModel($id);
        $model->oldPassword = $model->password;

        // Uncomment the following line if AJAX validation is needed
        // $this->performAjaxValidation($model);

        if(isset($_POST['Users']))
        {
            if(!empty($_POST['Users']['password'])) {
                $_POST['Users']['repeat_password'] = $_POST['Users']['password'];
            }
            if(empty($_POST['Users']['status'])) {
                $_POST['Users']['status'] = 0;
            }
            $model->attributes=$_POST['Users'];
            $model->updated_time = date('Y-m-d H:i:s');

            if($model->save()) {
                $this->redirect(array('index'));
            }
        }

        $this->render('update',array(
            'model'=>$model,
        ));
	}

	/**
	 * Deletes a particular model.
	 * If deletion is successful, the browser will be redirected to the 'admin' page.
	 * @param integer $id the ID of the model to be deleted
	 */
	public function actionDelete($id = null)
	{
        if(Yii::app()->user->isAdmin) {
            if(!empty($id) && $id != Yii::app()->user->id) {
                $this->loadModel($id)->delete();
                Yii::app()->user->setFlash('message', "Xóa users thành công!");
            }

            if(!empty($_POST['ids']) && Yii::app()->user->isAdmin) {
                foreach($_POST['ids'] as $userId) {
                    if($userId != Yii::app()->user->id) {
                        Users::model()->deleteAll("id='" . $userId . "'");
                    }
                }
                Yii::app()->user->setFlash('message', "Xóa users thành công!");
            }
        }
        $this->redirect('/admin/users/index');
	}

	/**
	 * Lists all models.
	 */
	public function actionIndex()
	{
        $sort = 'created_time desc';
        $criteria = new CDbCriteria();
        $criteria->order = $sort;
        $criteria->condition = 'role = 1 OR role = 2';

        $item_count = Users::model()->count($criteria);

        $pages = new CPagination($item_count);
        //$pages->setPageSize(Yii::app()->params['listPerPage']);
        $pages->applyLimit($criteria);  // the trick is here!

        $this->render('index',array(
            'model'=> Users::model()->findAll($criteria), // must be the same as $item_count
            'item_count'=>$item_count,
            'page_size'=>Yii::app()->params['listPerPage'],
            'items_count'=>$item_count,
            'pages'=>$pages,
            'sort'=>$sort
        ));
	}

	/**
	 * Manages all models.
	 */
	public function actionAdmin()
	{
		$model=new Users('search');
		$model->unsetAttributes();  // clear any default values
		if(isset($_GET['Users']))
			$model->attributes=$_GET['Users'];

		$this->render('admin',array(
			'model'=>$model,
		));
	}

	/**
	 * Returns the data model based on the primary key given in the GET variable.
	 * If the data model is not found, an HTTP exception will be raised.
	 * @param integer $id the ID of the model to be loaded
	 * @return Users the loaded model
	 * @throws CHttpException
	 */
	public function loadModel($id)
	{
		$model=Users::model()->findByPk($id);
		if($model===null)
			throw new CHttpException(404,'The requested page does not exist.');
		return $model;
	}

	/**
	 * Performs the AJAX validation.
	 * @param Users $model the model to be validated
	 */
	protected function performAjaxValidation($model)
	{
		if(isset($_POST['ajax']) && $_POST['ajax']==='users-form')
		{
			echo CActiveForm::validate($model);
			Yii::app()->end();
		}
	}

    public function actionLogout()
    {
        Yii::app()->user->logout();
        $this->redirect('/admin');
    }
    
    public function actionActive($id)
    {
    	$model=$this->loadModel($id);
    	$model->status = 1;
    	$model->update();
    	$this->redirect('/admin/users/index');
    }
}
